Route Origin Authorization
$ rpki-client -vvf rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/AS61138.roa
File: AS61138.roa (raw, json)
Hash identifier: mS5rDZ+PXxxd10GB3qs+C/IXl4uTKfPrS/9ArW9VNIU=
Subject key identifier: 40:23:6D:E5:0A:84:4E:31:30:CB:FF:ED:54:BE:7E:CB:09:E7:18:79
Certificate issuer: /CN=799438f1b1762aeef8a35cf4e6cbae97699bd020
Certificate serial: 33BAF10903A95F16CF8C9EBE777E35DEFA4FA9A1
Authority key identifier: 79:94:38:F1:B1:76:2A:EE:F8:A3:5C:F4:E6:CB:AE:97:69:9B:D0:20
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer
Subject info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/AS61138.roa
Signing time: Wed 11 Jun 2025 17:52:08 +0000
ROA not before: Wed 11 Jun 2025 17:47:08 +0000
ROA not after: Wed 10 Jun 2026 17:52:08 +0000
asID: 61138
IP address blocks: 5.253.84.0/22 maxlen: 24
5.253.86.0/24 maxlen: 24
27.0.232.0/22 maxlen: 24
81.31.208.0/21 maxlen: 24
83.142.30.0/23 maxlen: 24
85.90.220.0/23 maxlen: 24
89.39.210.0/23 maxlen: 24
94.24.108.0/23 maxlen: 24
94.26.24.0/23 maxlen: 24
103.68.108.0/22 maxlen: 24
103.68.108.0/24 maxlen: 24
103.204.192.0/22 maxlen: 24
103.214.68.0/22 maxlen: 24
103.230.140.0/22 maxlen: 24
104.167.16.0/23 maxlen: 24
118.91.184.0/22 maxlen: 24
144.48.80.0/22 maxlen: 24
160.202.132.0/22 maxlen: 24
185.90.62.0/23 maxlen: 24
185.99.132.0/22 maxlen: 24
185.121.160.0/22 maxlen: 24
185.121.168.0/22 maxlen: 24
185.121.168.0/24 maxlen: 24
185.121.176.0/22 maxlen: 24
185.147.32.0/22 maxlen: 24
185.195.238.0/23 maxlen: 24
185.214.172.0/22 maxlen: 24
185.236.212.0/22 maxlen: 24
194.58.64.0/23 maxlen: 24
195.184.246.0/23 maxlen: 24
2a06:1280::/32 maxlen: 48
2a06:9f45::/32 maxlen: 48
2a06:9f46::/32 maxlen: 48
2a06:a004::/32 maxlen: 48
2a06:a006::/32 maxlen: 48
2a06:a007::/32 maxlen: 48
2a09:54c1::/32 maxlen: 48
2a0a:6047::/32 maxlen: 48
2a0d:d903::/32 maxlen: 48
2a0d:d906::/32 maxlen: 48
Validation: OK
Signature path: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl
rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.mft
rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 16 Jun 2025 13:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
33:ba:f1:09:03:a9:5f:16:cf:8c:9e:be:77:7e:35:de:fa:4f:a9:a1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=799438f1b1762aeef8a35cf4e6cbae97699bd020
Validity
Not Before: Jun 11 17:47:08 2025 GMT
Not After : Jun 10 17:52:08 2026 GMT
Subject: CN=40236DE50A844E3130CBFFED54BE7ECB09E71879
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c4:10:e2:ca:d9:d9:d6:4b:27:0c:32:66:56:b8:
13:4f:4e:34:7d:f9:13:2f:e6:89:e6:9a:eb:9e:a8:
84:26:0a:9c:0d:29:7d:91:2c:b7:80:b7:66:16:df:
76:1f:42:32:da:68:68:fe:21:e3:91:f3:be:f2:08:
f0:c6:55:99:28:84:ef:e4:b8:f1:90:4e:1b:7d:ad:
0b:38:e9:01:48:66:22:c8:81:08:23:25:65:2d:3d:
b3:eb:b0:9c:d5:4e:0a:9d:83:6d:87:cd:ba:25:75:
31:2b:2a:3a:3f:15:28:ba:c6:c8:50:5b:3b:d0:d0:
ea:47:bb:cc:61:04:fb:1f:58:1b:6c:6f:70:75:da:
a2:7e:04:22:a7:87:0f:11:aa:ea:80:3b:dd:4d:44:
54:9c:7b:4a:05:e1:9c:1d:04:d4:f9:ef:2f:f7:f2:
b6:c7:64:1d:0e:60:23:32:18:94:02:09:76:36:0f:
04:5e:54:de:44:60:d8:dc:c9:b3:d0:e0:fc:85:51:
0f:ea:61:82:b5:1e:e4:49:fc:6b:46:bc:f7:f4:e9:
8a:ed:b6:d5:81:f6:b6:c0:6a:53:ec:27:e4:a6:9e:
c3:8b:22:9b:a2:e0:49:ca:86:ec:f7:56:68:58:22:
d2:3c:a0:bb:98:71:21:fe:88:f3:0f:a1:d9:5c:3e:
e9:af
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
40:23:6D:E5:0A:84:4E:31:30:CB:FF:ED:54:BE:7E:CB:09:E7:18:79
X509v3 Authority Key Identifier:
keyid:79:94:38:F1:B1:76:2A:EE:F8:A3:5C:F4:E6:CB:AE:97:69:9B:D0:20
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/AS61138.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.253.84.0/22
27.0.232.0/22
81.31.208.0/21
83.142.30.0/23
85.90.220.0/23
89.39.210.0/23
94.24.108.0/23
94.26.24.0/23
103.68.108.0/22
103.204.192.0/22
103.214.68.0/22
103.230.140.0/22
104.167.16.0/23
118.91.184.0/22
144.48.80.0/22
160.202.132.0/22
185.90.62.0/23
185.99.132.0/22
185.121.160.0/22
185.121.168.0/22
185.121.176.0/22
185.147.32.0/22
185.195.238.0/23
185.214.172.0/22
185.236.212.0/22
194.58.64.0/23
195.184.246.0/23
IPv6:
2a06:1280::/32
2a06:9f45::-2a06:9f46:ffff:ffff:ffff:ffff:ffff:ffff
2a06:a004::/32
2a06:a006::/31
2a09:54c1::/32
2a0a:6047::/32
2a0d:d903::/32
2a0d:d906::/32
Signature Algorithm: sha256WithRSAEncryption
7a:3d:88:eb:87:1d:21:e4:3e:aa:ac:da:ec:d4:83:12:cc:d7:
f7:b2:6f:e5:04:ec:e6:2a:b6:01:da:4a:c7:28:1b:01:33:da:
2f:2d:7c:b6:00:58:fd:27:9e:83:39:1a:48:3b:af:fc:2b:9b:
e0:a5:2e:7a:10:74:45:fa:73:7d:ef:cc:e9:bd:68:b3:78:24:
e6:ce:e5:b1:c4:e1:14:4a:1b:b3:f8:20:b1:c9:e3:ff:6b:fe:
69:95:84:9c:d9:50:5b:2e:0e:2c:0c:1c:0f:15:ff:74:01:97:
d8:89:e9:f2:73:2f:a0:17:fb:b7:19:3b:3c:bb:b7:a9:c2:c7:
d1:c6:b3:7b:47:29:42:68:de:9f:ae:c5:f6:00:6b:54:52:a6:
b0:09:56:a9:99:28:a2:8d:b9:7d:b7:ee:75:b1:47:15:a6:77:
71:ab:7c:e4:8c:a8:b2:6e:bd:2d:a3:fb:90:3e:97:2d:1a:88:
37:27:76:e9:02:f3:8e:24:d1:46:c4:42:3f:ac:e1:34:8a:1c:
1a:65:85:d6:9c:d5:32:25:dd:5b:80:92:7c:ae:0d:ac:f6:d8:
35:f5:b5:be:30:21:9d:3a:c4:f3:4f:96:44:c9:88:50:90:14:
11:a9:ca:f8:09:e4:0a:df:5f:a5:c3:be:55:52:1a:b7:13:d8:
96:d5:91:90
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jun 15 19:26:21 2025 by rpki-client